search

christos27 / goapp

GNU General Public License v3.0
0 stars 0 forks source link

#5 use default CheckOrigin #7

Closed christos27 closed 1 month ago

christos27 commented 1 month ago

As it currently stands, CheckOrigin when doing a websocket upgrade does not provide any check regarding the Origin header. Solution to this is to use the default CheckOrigin provided by the websocket module, which checks the Origin header against the Host header.

This function could be enhanced according to requirements on a new feature request.

christos27 commented 1 month ago

For testing examples please check comment https://github.com/christos27/goapp/issues/5#issuecomment-2335188083